Avoid revealing source code for CSHTML and javascript
Question
I have the following code:
<html>
<head>
</head>
<body>
<!-- some more CSHTML code here -->
<script src="https://js.braintreegateway.com/v1/braintree.js"></script>
<script>
var braintree = Braintree.create("SOME RANDOM KEY");
braintree.onSubmitEncryptForm('braintree-payment-form');
</script>
</body>
</html>
I want to be able to do the script without revealing the key string in the source. I have a key, but I don't want it to be revealed. Is there a safe and secure way to access a string by reference (preferably from a C# file)? Sort of like:
<script>
var braintree = Braintree.create(somefile.getString("string_key"));
braintree.onSubmitEncryptForm('braintree-payment-form');
</script>
1 answers
solution1
2 2013-11-05 02:06:46
If the code runs on the client, the key cannot be completely secure. A determined user could monitor network traffic and watch for the key when it arrived, or do one of 100 other things to compromise the key.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
How display html code using a javascript function with razor (cshtml)?
How to debug javascript in cshtml
a copy of index.cshtml was found in App_Web_*.dll, but the correct source code is different from the version built into App_Web_*.dll,
Changing dropdownlist dynamically with cshtml and javascript
Separating JavaScript in cshtml razor views
.cshtml Razor Code Template (.NET)
parsing html, source code, javascript problem
Regex: Match 'in' operator in JavaScript source code
Grab TextBox-Value in cshtml from JavaScript
Using Javascript if else inside MVC .cshtml page
Related Tags